Your stuff is safe. The usernames and passwords referenced in these articles were stolen from unrelated services, not Dropbox. Attackers then used these stolen credentials to try to log in to sites across the internet, including Dropbox. We have measures in place to detect suspicious login activity and we automatically reset passwords when it happens.

Mityagin also took the opportunity to remind folks to enable 2 step verification for an additional layer of security. This should be done on any service that offers it. Basically, you’ll have to add a second security code in order to access your account.

Another list of usernames and passwords were posted online and Dropbox also said those usernames aren’t associated with Dropbox accounts.